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NETWORKED DEVICE BRANDING FOR SECURE INTERACTION 
IN TRUST WEBS ON OPEN NETWORKS 

TECHNICAL FIELD 

This invention relates to set up of authentication and security to establish interaction 
5 among a sub-group of devices on an otherwise non-secure, multi-user access network. 

BACKGROUND AND SUMMARY 

The cost of computing and networking technologies have fallen to the point where 
computing and networking capabilities can be built into the design of many electronic 

0 devices in the home, the office and public places. The combination of inexpensive and 

pp 10 reliable shared networking media with a new class of small computing devices has created 

r: an opportunity for new functionality based mainly on the connectivity among these devices. 

=p This connectivity can be used to remotely control devices, to move digital data in the form 

y[ of audio, video and still images between devices, to share information among devices and 

L. with the unconstrained World Wide Web of the Internet and to exchange structured and 

01 15 secure digital data to support things like electronic commerce, A prevalent feature of these 
l m connectivity scenarios is to provide remote access and control of connected devices and 

^3 services from another device with user interface capabilities (e.g., a universal remote 

controller, handheld computer or digital assistant, cell phones, and the like). The 
connectivity also enables many new applications for computing devices, such as proximity- 

20 based usage scenarios where devices interact based at least in part on geographical or other 
notions of proximity. This trend of ubiquitous and pervasive networked computing leads 
toward a world in which all types of devices are able to effortlessly and seamlessly 
interconnect and interact. 

Common networking media (e.g., the Internet, Ethernet Local Area Network (LAN), 

25 wireless network, and the like) have a drawback in that they provide open, multiple user 
access to any device with an appropriate network adapter, or other physical connection to 
the networking medium. However, in many common situations, it is desirable to control 
which other devices and/or users can interact with a networked device. On a wireless 
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network in a home environment, for example, the home owner may want to establish that 
various of the home owner's networked devices can interact (e.g., a networked telephone 
terminal with email display can interact with a home email server, or a music compact disk 
player can interact with a set of audio system amplifiers and speakers on the wireless home 
5 network), while at the same time preventing interaction with other devices that may access 
the network (e.g., a neighbor's devices within range of the wireless network). On an office 
LAN network, interaction with networked conference room devices (e.g., monitors, audio 
system, electronic white board, etc.) may be desirably limited to other devices owned by the 
business, and exclude outsider's devices that may gain access to the network (e.g., by being 

10 within wireless networking range, plugged into an Ethernet wall plate connector, or via an 
Internet connection to the office LAN network). 

Cryptographic techniques can be used to protect confidentiality of communications 
between devices (e.g., via cryptographic encryption of data), protect message integrity (e.g., 
via a cryptographic checksum), authenticate sender identity (e.g., via a digital signature), 

15 and verify information presented by the sender is certified by a trusted authority (e.g., via 
digital certificates). Cryptographic encryption techniques can be based on well known 
symmetric key and public key encryption algorithms, such as the National Bureau of 
Standards' Data Encryption Standard (DES), Triple DES, the National Institute of Standards 
and Technology's (NIST) Advanced Encryption Algorithm (AES), the Diffie-Hellman- 

20 Merkle Algorithm, the RSA Algorithm, and the ElGamal Algorithm. Cryptographic 

checksum techniques can use well known message-digest algorithms, such as MD2, MD4, 
MD5, SHA and SHA-5. Digital signatures can use the well known NIST Digital Signature 
Standard (DSS), and the Digital Signature Algorithm (DSA). A well known digital 
certificate technique includes the X.509 digital certificate standard of the International 

25 Telecommunication Union-Telecommunication Standardization Sector (ITU-T) and 
ISO/International Electrotechnical Commission (IEC). 

An obstacle to use of these cryptographic techniques to provide secure interaction 
within trust groups of devices on an open network is the difficulty in set-up or configuration 
of the devices with the necessary authentication, and identification information (e.g., 
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cryptographic keys, identification certificates, user and/or group identity, password, etc.). 
This obstacle is a particularly significant impediment to establishing trust groups of devices 
on unmanaged networks, such as in the home or small business environments, where 
professional network administration is not available. With a trend towards pervasive 
5 networked computing, such unmanaged networks may predominate. For example, device 
manufacturers cannot expect the average non-technically sawy consumers to be willing or 
capable of setting up their now-pervasively-networked home appliances to establish trust 
group interaction among such devices. 

The present invention is directed towards providing a way to easily setup devices on 

10 openly accessible network media to establish "trust webs" or sub-group of devices on the 
network media authorized to interact with each other. Using cryptographic techniques, the 
devices in a trust web distinguish which other devices on the openly accessible network 
media are authorized to access it, and communicate with such other devices. In an 
embodiment illustrated herein, a process (herein referred to as "branding") electronically 

15 imprints a device with its initial trust group set up information to properly interact in a trust 
web with other members of the network. In one illustrated implementation, this information 
includes a name, a public key, a private key and a set of certificates the device will need to 
inter-operate with other trust group devices that form the trust web. 

According to one aspect of the invention, the initial branding of an uninitialized 

20 device is performed using a branding device. Using digital certificates or other 

cryptographic techniques, the branding device electronically imprints the device with its 
identity and membership in the trust group. In one exemplary implementation, the device is 
imprinted with a name for the device, the branding device's public key, and digital 
certificates to specify that the device trusts the branding device, and is a member of a trust 

25 group. The device can then use the branding device's public key to verify certificates of 
other devices on the network that seek to interact with the device are also members of the 
trust group. The now branded device then willingly interacts with such other devices in the 
trust group. 
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According to another aspect of the invention, the uninitialized device accepts its 
initial branding by the branding device only via a limited access network interface, such as 
an universal serial bus (USB), infrared or other like network media interface that provides 
non-broadcast or limited broadcast, one-to-one communication. Further, the uninitialized 
5 device preferably refuses interaction over the open access network until branded by a 
branding device via its limited access network interface. These measures are intended to 
prevent unknown others from branding the uninitialized device on an unsecured network 
before the owner has the opportunity to perform its initial branding, or like other 
unauthorized access. 

10 Alternatively, the branding also can be performed in a secure manner via a wireless 

or other multi-access broadcast network medium interface of the uninitialized device by 
placing the branding and/or uninitialized devices in a wave-guide and/or Faraday cage that 
physically limits the transmission to the branding and uninitialized devices. 

Additional features and advantages will be made apparent from the following 

15 detailed description of the illustrated embodiment which proceeds with reference to the 
accompanying drawings. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Figure 1 is a network diagram depicting a pervasive networked computing 
environment where groups of networked computing devices are branded in accordance with 
20 an embodiment of the present invention to interact in trust groups. 

Figure 2 is a data flow block diagram illustrating branding of a networked computing 
device, such as in the pervasive networked computing environment of Figure 1, by a 
branding device via a limited access network interface. 

Figure 3 is a block diagram of a branding device branding a networked computing 
25 device via a broadcast network media with access limited via a wave guide and/or Faraday 
cage. 

Figure 4 is a flow diagram of a branding process performed by the branding device 
of Figure 2 to establish trust group interaction between networked computing devices, such 
as in the pervasive networked computing environment of Figure 1. 
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Figure 5 is a block diagram of a computer system that may be used as the networked 
computing device or the branding device of Figure 2. 

DETAILED DESCRIPTION 

5 With reference to Figure 1, an implementation of the present invention provides 

branding of networked computing devices 120-131 to establish trust groups 140-142 in 
which the devices can securely interact when networked via an open access data network 
110. Figure 1 depicts an illustrative pervasive networked computing environment 100 
where a large variety of everyday devices are equipped with networking and computing 

10 capability (e.g., the networked computing devices 120-13 1) to communicate via the open 
data network 1 10. The depicted networked computing devices 120-131 (including a cell 
phone ? laptop computer, handheld computer, pager, monitor, server computer, desktop 
computer, printer, scanner, telephone, video camera, and television) are exemplary of the 
wide variety of networked computing devices that can support branding. The open data 

1 5 network 1 1 0 also can encompass any of a variety of networking media and networking 
technologies that permit multi-access, broadcast data communications among any devices 
with physical access to the network (e.g., via an appropriate network adapter in the area of 
the network), including power line networking, radio frequency networking, Ethernet, Cable 
Modem networks, satellite data networks, among others. 

20 Branding is the process of providing a networked computing device with its initial 

trust set-up information to enable interaction with other members (e.g., devices 120-131) of 
a trust group 140-142 on the open data network 110. In the illustrated branding process, the 
trust set-up information includes the networked computing device's name, its public/private 
key identity and any certificates to properly interact with other devices in a trust group. 

25 Branding is necessary in order to allow a group of networked computing devices (e.g., 
devices 120-128 in trust group 141; devices 126-129 in trust group 142; and devices 130- 
131 in trust group 140) to operate securely over an unsecured multi-access network medium 
of the open data network 110. 
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In one implementation, the branding process uses an authentication, and trust transfer 
technology based on public key cryptography called Assertion Based Certificates, which is 
detailed in an Appendix A section below. Alternative implementations of branding can use 
other well known public-key cryptography and digital certificate techniques, such as the 
5 well known Diffie-Hellman, RSA, and ElGamal public key cryptography algorithms and the 
X.509 digital certificate standard, to encode and imprint trust group devices with their 
device name, cryptography keys, branding device and group membership certificates 
information for establishing the trust web. Well known digital certificate systems, such as 
the Microsoft Certificate Server, can be modified to perform the branding process as 

10 described herein. 

With reference now to Figure 2, a "security-enabled" networked computing device 
220 includes support (e.g., in its operating software or firmware) to be branded via the 
branding process with its initial trust set-up information, and thereafter limit at least some of 
its interaction to only other members of a trust group or groups. When sold at retail (i.e., 

15 "out-of-box"), the device 220 initially is unbranded, meaning that it has not yet been 

initialized with trust set-up information. The branding process can then be performed by the 
end consumer or as a preparatory service by the retailer or an installation technician. The 
device 220 also can be reset to its initial unbranded state, such as via a reset button on the 
device or when serviced by a factory or other authorized technician. 

20 In some implementations, the security-enabled networked computing device 220 can 

support being branded over any network media (including its open network interface 224 to 
the open data network 1 10). However, it is generally unwise to brand over a multi-access 
medium (the open data network 110) such as power line networking, radio frequency 
networking or even an improperly configured Ethernet or Cable Modem network. If a 

25 device permits branding via its open network interface and is connected to such an 

unsecured network, it is possible for someone else to come along and brand the device 
before the owner has an opportunity. Accordingly, a preferred implementation of the device 
220 includes a limited access network interface 222, and is configured to permit branding 
only via the limited access network interface 222. The security enabled device 220 will 
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refuse to accept commands over its open data network interface 224, until it has been 
branded through its limited access network interface 222, such as infrared or universal serial 
bus (USB). While infrared is a multi-access network medium it suffers from severe physical 
limitations making it a relatively secure medium for branding. In most consumer scenarios 
5 any level of security which requires physical access to violate security is usually acceptable. 
For those times when the device has to be branded in an unsecured physical location, USB 
or other direct link technologies can be used for branding. 

In the illustrated branding implementation, the trust set-up information is conveyed 
to the security-enabled networked computing device 220 by a branding device 210. 

10 Common branding devices are expected to include handheld, laptop and desktop computers, 
but a variety of alternative devices including specific-purpose branding devices also can be 
used. The illustrated branding device 210 is programmed with "brander" software 212 that 
implements branding of networked computing devices with their trust set-up information. 
With reference to Figure 3, alternative branding implementations can establish a 

15 "trusted link" between the branding device 210 and the networked computing device 220 
using broadcast network media (e.g., Bluetooth radio frequency (RF) networking or other 
wireless networking) which is limited using additional equipment (e.g., a wave guide 310 
and/or Faraday cage 320) to provide one-to-one communication between the devices. In this 
way, the additional expense of equipping the networked computing device with a limited 

20 access network interface (e.g., a USB or infrared port) that is only needed for branding can 
be avoided. Instead, the networked computing device is configured to support a branding 
mode. When set to its branding mode, the networked computing device accepts branding 
via its open network interface 224. Preferably, there is a delay after activation of the 
branding mode before the branding mode is enabled to permit time for the networked 

25 computing device to be placed in the wave guide and/or Faraday cage. 

For example, a Bluetooth-enabled cell phone can be branded using its bluetooth 
networking interface. The cell phone is set to its branding mode. The Bluetooth 
transmitter/receivers 300, 302 of the branding device 210 and networked computing device 
220 are placed in the sleeve of the wave-guide 310. The wave guide encloses the 
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transmitted signal to remain inside the wave guide. As there is a small chance of "blow 
back" with a wave guide (i.e., signal escaping the wave guide), the networked computing 
device can further be placed in the Faraday cage. The Faraday cage is an enclosed area 
constructed to prevent entry or exit of electromagnetic radiation. The branding device then 
5 brands the cell phone. Branding using this alternative procedure can be performed for 
example at the retail outlet, a service center, or by an authorized installer or service 
technician. 

Figure 4 illustrates a branding process 400 in which the branding device 210 
provides the networked computing device 220 with its initial trust set-up information. Once 

10 the user has connected the branding device to the device to be branded using the limited 
access network port (as indicated at 402), the user will activate the brander program and 
enter (at 404) in a name for the networked computing device 220. For example, a CD player 
in the Kitchen might be named "Kitchen CD." Naming generally is useful in order to 
differentiate devices that perform the same function. One can imagine the confusion of 

15 setting up a stereo system if there are multiple CD players and speakers in the household. 
The branding process allows a name to be associated with each device so as to allow 
humans to differentiate them. 

In addition to assigning a name of the networked computing device, a public/private 
key pair also is generated (at 406) to identify the device 220. For simple networked 

20 computing devices, the branding device 2 1 0 generates the public/private key pair. The name 
and public/private key pair of the networked computing device form a principal identifier 
214 (Figure 2) that represents the identity of the networked computing device. At 408, the 
branding device transmits the networked computing device's principal identifier via the 
limited access network interface 222. Alternatively, for more complicated devices, 

25 especially devices which already have a security state, the networked computing device 220 
has or generates its own public/private key pair at 406, and sends its public key to the 
branding device and in return receives its name at 408. 

The branding device 210 then generates a branding certificate 217 (Figure 2) at 410 
that tells the networked computing device 220 to trust the branding device. The branding 
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certificate also provides the networked computing device with the branding device's public 
key for use in checking certificates provided by other devices that claim to be authorized by 
the branding device. 

The branding device 210 also generates any other certificates the device needs in 
5 order to interact on the network at 412. These include trust group membership certificate(s) 
216 (Figure 2) that identify the networked computing device to be a member of a trust group 
(e.g., groups 140-142 in Figure 1). In a home network, for example, devices will probably 
be configured to only be willing to communicate with other devices that are members of the 
same group they are. Group membership is determined through a certificate that states that 
^ 10 a device is a member of a particular group. If the certificate is signed by the branding 
vfl device, whom everyone has been programmed to trust, then the group membership 

certificate will be considered valid and the communication will be allowed. 
l )l At 414, the networked computing device 220 receives and stores the trust set-up 

information conveyed via the limited access network interface 222 from the branding device 
I 15 210 into a trust set-up store 232. At 41 6, the networked computing device 220 initializes its 

security resolver 228 with the branding device's branding certificate. The initialized 
u security resolver 228 can then use the branding device's public key to authenticate 

Si certificates provided by other devices to the networked computing via the interface 224 to 

the open data network 110, and permit interaction with such devices that are properly 
20 validated as members of the networked computing device's trust group(s). 

In some implementations of branding, many networked computing devices, 
especially of the consumer variety, may continue to implicitly trust communications over the 
limited access network interface. Imagine, for example, that the branding device 1 10 is lost. 
Unless the user backed up the branding device's public and private key and has the ability to 
25 restore them to a new branding device it will no longer be possible to add new devices to the 
network. Having to send the devices back to the factory to have their branding reset is not 
likely to be a very pleasant user experience. In such cases, it may be preferable to leave the 
limited access network interface trusted and to be willing to accept new branding 
information over that interface. Alternatively, the networked computing devices can be 
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equipped with a branding reset button that can be activated to reset the devices to their initial 
unbranded state, in which the devices can be re-branded by another branding device. 

In other branding implementations, networked computing devices (e.g., which have 
to exist in public or other unsecured venues) once branded, will most likely require the same 
5 level of verification through their limited access network interfaces as they do through their 
multi-access network interfaces. This will ensure that once the device has been branded no 
unauthorized modifications will be made to the device. This requires that the keys used to 
brand the devices be more carefully looked after but this is not an unreasonable expectation 
for a device which is expected to operate in a secure manner in an unsecured location. 

10 With reference to Figure 5, an exemplary device architecture 600 for the branding 

device 210 or networked computing device 220 (Figure 2) typically is configured to include 
a processing unit 602 (e.g., a microprocessor or micro-controller) and system memory 604. 
Depending on the exact configuration and type of computing device, the system memory 
may be volatile (such as RAM), non-volatile (such as ROM, flash memory, etc.) or some 

15 combination of the two. Additionally, the computer 600 may also have mass or secondary 
storage (removable 606 and/or non-removable 607) such as magnetic or optical disks or 
tape. The storage typically stores operating and application software 630, 634, as well as 
branding or security initializer program implementing the branding process for the 
respective branding or networked computing device. Similarly, the computer architecture 

20 600 may also have input devices 610 such as a keyboard, pointing device, microphone, etc., 
and/or output devices 612 such as display, speaker, printer, force-feedback, etc. The 
computer architecture 600 also typically includes network connections 620 (such as the 
limited access network interface 222 and open data network interface 224 of Figure 2) to 
other devices, computers, networks, servers, etc. using either wired or wireless media. 

25 Alternatively, the system components of the device may in fact be embodied in a distributed 
computing system. For example, a terminal device may incorporate input and output 
devices to present only the user interface, whereas processing component of the system are 
resident elsewhere. A phone may present web pages that are constructed on a remote server 
from data resident on a database server somewhere else again. 
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The computer architecture 600 typically includes at least some form of computer 
readable media. Computer readable media can be any available media that can be accessed 
by the computer. By way of example, and not limitation, computer readable media may 
comprise computer storage media and communication media. Computer storage media 
5 includes volatile and nonvolatile, removable and non-removable media implemented in any 
method or technology for storage of information such as computer readable instructions, 
data structures, program modules or other data. Computer storage media includes, but is not 
limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, 
digital versatile disks (DVD) or other optical storage, magnetic cassettes, magnetic tape, 

10 magnetic disk storage or other magnetic storage devices, or any other medium which can be 
used to store the desired information and which can be accessed by the computer. 
Communication media typically embodies computer readable instructions, data structures, 
program modules or other data in a modulated data signal such as a carrier wave or other 
transport mechanism and includes any information delivery media. The term "modulated 

15 data signal" means a signal that has one or more of its characteristics set or changed in such 
a manner as to encode information in the signal. By way of example, and not limitation, 
communication media includes wired media such as a wired network or direct-wired 
connection, and wireless media such as acoustic, RF, infrared and other wireless media. 
Combinations of any of the above should also be included within the scope of computer 

20 readable media. 

APPENDIX A 
ASSERTION BASED CERTIFICATES (ABCS) 



Introduction 

25 The goal of Assertion Based Certificates (ABCs) is to create an authentication 

and encryption infrastructure that can operate both in the presence and absence of central 
authority. 
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ABCs provide for authentication, encryption and trust transfer. The later provides 
for trust webs that can be created without central administration or a centralized namespace. 

While ABCs are based on public key technology provisions are made to allow 
for the retrieval of public/private key pairs through the use of passwords. While such a 
5 system is no more secure than a password based system the ability to retrieve a 

public/private key pair provides benefits in terms of the scalability of trust transfers and 
uniformity of security systems. 

ABCs also provide for the creation and manipulation of groups of principals as 

well as k-of-n threshold groups. 

10 Design 

ABC exists to allow for the transfer of trust amongst principals. ABC's resolution 
system allows one to determine if trust is properly being transferred in order to allow an 
action. ABC's certificate format allows one to exactly express what trust is being transferred. 

15 Resolution 

In order to explain how ABC's resolution system the concept of an assertion is 

introduced. An assertion is a statement of the form Assertion(Issuer, Subject, Date, 
Delegate, Revoke). An assertion can be thought of as a logical predicate that is used to build 
up a model of the universe. When someone attempts to perform an action one creates a 
20 hypothesis that the person is allowed to perform the desired action and tests it against the 
model. 

An assertion can be read "The issuer asserted ASSERTION about the subject at 
the date indicated." 

If the delegate value is included then an additional statement is added "The issuer 
25 authorizes the subject to transfer the trust of the assertion onto other principals." 

If the revoke value is included then assertion is a revocation. This means that the 
right is being taken away. Conflicts between an assertion and revocation are resolved based 
on the issuing date/time. The later date/time always wins. 

In the general case revoke and delegate are mutually exclusive. 

12 
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Principals 

ABC sidesteps the issue of what a principal is and instead concentrates on how a 
principal is identified. In ABC a principal identifier is a universally unique identifier, usually 

5 a public key. The benefit of this arrangement is that it does not require any central 

administration of a principal namespace. By the very nature of encryption the names of all 
principals are now more or less guaranteed (modulo the odd cosmic ray) to be unique. 

This relationship is backwards from most public key systems. In most systems a 
principal is identified by some sort of principal namespace and then a public key is 

1 0 associated with that principal identifier. This meant that some sort of central control was 
needed to make sure that principal identifiers didn't collide. In ABC no central control of 
any kind is required. 

Groups 

In a public key infrastructure one often wishes to group principals together in 
1 5 order to make statements about the group as a whole. 

In ABC a group is a principal, identified and manipulated as any other principal. 
However the group related assertions are principal substitution trust transfer assertions. Thus 
one can take a single assertion that has a group as its subject and resolve it into an assertion 
with each group member as the subject. 
20 Group principals are not members of themselves by default although they can be 

declared as such. 

K-of-N Thresholds 

There exist cases where one does not wish to transfer trust to a single principal 
acting on its own. Rather, one wishes to transfer trust for use by a group of principals acting 
25 in concert. For example, one would not want a single principal able to authorize the 
launching of a nuclear missile. One would much rather require that out of N authorized 
principals, at least K must agree before the launch could occur. This situation is referred to 
as a K-of-N threshold. 
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Like groups, K-of-N thresholds are principals. If a K-of-N threshold is listed as 
the issuer of a certificate than the certificate must be signed by at least K of the members of 
the K-of-N threshold for the certificate to be considered valid. 

Resolver 

5 A resolver has two jobs: (1) Collect together assertions, verify that the assertions 

were made by the stated issuers and that the assertions are valid; and (2) Evaluate security 
queries. 

When a system wishes to determine if a certain action should be allowed it 
describes the action as a set of assertions and then performs a security query on the resolver 
□ 10 to determine if those assertions all exist in the set of assertions maintained by the resolver. If 
J? the answer is yes, then the action is allowed. 

W When an assertion is validated by the resolver and entered into the resolver's 

j« database it may be possible using the operations below to create new assertions. The two 

W mechanisms most commonly used to create new assertions are trust transfers and principal 

g 15 substitutions. 

-f 7 Validation 

~j Validation is the process of determining if an assertion was actually made by the 

H listed issuer. Before an assertion can be entered into the resolver' s database it must be 

validated. 

20 Public Key Principals 

In the case that the issuer is a public key having the assertion signed by the issuer 
can validate the assertion. 

Verification MUST be provided that the issuer's signature was used for the 
explicit purpose of validating the assertion. 
25 For example, one could imagine a file system which, when asked for a file, 

returns the file signed by the file system administrator. Inside the file is a series of assertions 
that list the file system administrator as the issuer. It would be inappropriate to use the 

14 
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signature of the file as a means of validating the assertions contained within. This is 
especially true given that in this case the reason the file was signed was to prove that what 
the requestor received was what the file system sent. 

This specification provides for the signedassert and unsignedassert elements to 
5 help address these issues. The signedassert element provides explicit confirmation that an 
assertion was signed for the purposes of verification. The unsignedassert XML element 
provides explicit confirmation that an assertion was not signed for the purposes of 
verification. In the case where both assertions are included the unsignedassert MUST always 
win. 

1 0 Signatures may potentially be nested. In that case the signedassert/unsignedassert 

XML elements 

The purpose of the signature is only to prove that the contents were received in 
the form sent by the file system. It would thus be inappropriate to use the signature as a 
means to validate any assertions which may If the file should happen to contain an assertion 
1 5 which lists the file system administrator as the issue, it would clearly be inappropriate to 

Trust Transfer 

The trust transfer is the core of the ABC design. It allows trust to be passed along 
a chain that can then be followed back to the root, SELF. A trust transfer occurs between 
two assertions that have the following form: 



20 #1 # 2 



Assertion A A 

Issuer Principal 1 Principal 2 

Subject Principal 2 Principal 3 

25 Date Datel Date2 

Delegate Yes Value in #2 

Revoke No No 

Other Same Same 



30 The two assertions are of the same type and the first one has delegate authority. 

Delegate authority is critical because it is what makes the trust transfer legal. That is, 
Principal 1 has given Principal 2 the right to pass the trust onto someone else. Obviously 
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neither certificate can be a revocation since revocations are meant to end trust relationships, 
not create them. Finally, the assertion might include additional information. Unless the 
definition of the assertion states otherwise, the only requirement for performing a trust 
transfer is that the additional information for both assertions be identical. 
5 The result of the trust transfer operation is the creation of a new assertion of the 

following form: 

Assertion A 

Issuer Principal 1 

10 Subject Principal3 

Date If (Datel > Date2) then Date2 else Datel 

Delegate Value in #2 

Revoke No 

Other Same . . 

15 The new assertion states that principal 1 make assertion A about principal 3. 

Even though principal 1 never directly made this statement, it is valid to create the new 

assertion because of the trust transfer enabled by the delegate authority principal 1 gave to 

principal 2. The date of the new assertion will be the more recent of the two dates as this 

will indicate the most up to date information. The delegate value for the new assertion will 

20 depend on the value of the original certificate that transferred trust to principal 3. 

Trust trains can be broken. If assertion #1 should ever be revoked then the entire 

trust train built on it would break as well and all trust transfer operations based on assertion 

#1 would have to be removed. 

Principal Substitution 

25 A principal substitution is a trust transfer that functions across different kinds of 

assertions. This document contains two principal substitution assertions, SELF and ALL. 



Assertion 

Issuer 

Subject 

Date 

Delegate 

Revoke 



#1 



SELF/ALL 
Principal 1 
Principal 2 
Datel 
Irrelevant 
No 



#2 



A 

Principal 2 
Principal 3 
Date2 
Value in #2 
No 
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Other Same Same 

The first assertion is either SELF or ALL. The second assertion can be anything. 
Although the meaning of the SELF and ALL assertions, as explained below, are different, 
5 the principal substitution mechanism works the same way for both. The subject of the 
principal substitution assertion can then be substituted for any other subject in any other 
assertion. 

The result of the principal substitution trust transfer operation is the creation of a 
new assertion of the following form: 

10 



Assertion A 

Issuer Principal 1 

Subject Principal 3 

Date If (Datel > Date2) then Date2 else Datel 

1 5 Delegate Value in #2 

Revoke No 

Other Same 



Date Conflict 

20 A date conflict occurs when two assertions are otherwise identical but for their 

issuing date. In this case the assertion with the more recent date wins. Note that the 
validation information for the assertions is not relevant to the existence and resolution of a 
date conflict. Thus even if the older assertion has tighter verification requirements if the 
newer assertion has been properly verified then it MUST replace the older assertion. 

25 Revocation Conflict 

A revocation conflict occurs when one assertion grants a right to a principal and 
another removes it. 

The first step in the case of a conflict is to perform full resolution and ensure that 
both assertions can be reduced to having the issuer be SELF. This ensures that the assertions 
30 are relevant to the resolver and are not simply holding space in case a future assertion is 
made which can complete the trust chain back to self. 

Once this reduction has occurred two assertions should remain: 
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#1 


#2 


Assertion 


A 


A 


Issuer 


SELF 


SELF 


Subject 


Principal 2 


Principal 2 


Date 


Datel 


Date2 


Delegate 


Irrelevant 


Not Present 


Revoke 


No 


Yes 


Other 


Same 


Same 



The winner of the conflict will be the assertion with the more recent date. 
Delegation Conflict 

It is possible for two assertions, once resolved to SELF, to have identical values 
for everything, including date, but not for delegate. In that case the assertion granting 
delegation rights SHOULD be favored. 

Principal A's Principal B 

One of the hardest problems in creating a public key infrastructure is the 

telephone book problem. If I look up "Jim Smith" in a telephone book there are likely to be 
an enormous number of people listed. While it is possible to use secondary information, 
such as the listed address, this information may not always be available and unless the 
contents of the telephone book have themselves been verified by a trusted third party it is 
always possible for someone to he. 

One of powerful observation is that while you may not know Jim Smith's public 
key, you do know your friend Michael's public key and you know that Michael knows Jim. 
Therefore what you wanted to do was to go to Michael's address book (available on-line, of 
course) and query it for the Jim Smith that your friend Michael knows. It is possible that 
your friend Michael also knows multiple Jim Smiths but in the average case the total number 
is small and it is expected that sufficient secondary data will be provided to allow for 
differentiation between them. 
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ABC supports this facility through the FXPP ignore rules. It is possible to add 
arbitrary information to an assertion which, if not understood, will be ignored. Thus one can 
add all sorts of properties, without worrying about corrupting the meaning of the assertions. 

PRINCIPAL XML ELEMENT 

5 Name: principal 

Namespace: ABC: 

Purpose: Provides a principal name. Two naming schemes are currently 
supported. The first returns the entire public key. The second returns a collision free hash of 
the public key. The second is often preferred because it saves space and, as SPKI points out, 
1 0 in the case of small RS A keys it can protect those keys from cryptanalysis by keeping them 
secret. A privatekey XML element is only included for informational purposes. A principal 
can only be identified by its publickey or a hash of the public key. 



< ! ELEMENT principal ((publickey privatekey?) I keyhash | 
15 passprincipal) loc?> 

PUBLICKEY XML ELEMENT 

Name: publickey 
Namespace: ABC: 

20 Purpose: Contains a public key algorithm specific XML element that specifies a 

public key. Companion documents will define XML elements appropriate for expressing 
specific types of public keys. 

< ! ELEMENT publickey ANY> 

25 

PRIVATEKEY XML ELEMENT 

Name: privatekey 
Namespace: ABC: 
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Purpose: Contains a private key algorithm specific XML element that specifies a 
private key. Companion documents will define XML elements appropriate for expressing 
specific types of private keys. 

5 <! ELEMENT privatekey ANY> 

KEYHASH XML ELEMENT 

Name: keyhash 
Namespace: ABC: 

1 o Purpose: Identifies that the hash element inside of this element is the hash of a 

public key. No keyhash is needed for a private key because private keys can not be used to 
identify principals. 

<! ELEMENT keyhash hash> 

15 

PASSPRINCIPAL XML ELEMENT 

Name: passprincipal 
Namespace: ABC: 

Purpose: Identifies a principal using a name and password. 

20 

<! ELEMENT passprincipaL name password> 

NAME XML ELEMENT 

Name: name 
25 Namespace: ABC: 

Purpose: Provides the name part of a name/password pair. 

<! ELEMENT name HREF?> 
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PASSWORD XML ELEMENT 

Name: password 
Namespace: ABC: 

Purpose: provides the password part of a name/password pair. The password 
5 MUST be a string. 



<! ELEMENT name #PCDATA> 



LOC XML ELEMENT 

10 Name: loc 

Namespace: ABC: 

Purpose: Provides location information regarding the principal. Locations are 
identified using URIs. Generally locations are used to retrieve up to date copies of the 
principal's public key. 



15 



< ! ELEMENT loc href+> 



Persisted Valid Assertions 

As previously stated, a valid assertion is expressed as Assertion(Issuer, Subject, 

20 Date, Delegate, Revoke). The components of an assertion must be persisted in order to 

enable them to be transferred from one system to another. The persistence format for each of 
the components but the date is given below. The date will be discussed in the section on 
validation along with how to persist other validation information. 

ISSUER XML ELEMENT 

25 Name: issuer 

Namespace: ABC: 

Purpose: Identifies the principal who is making an assertion. 



<! ELEMENT issuer principal> 
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SUBJECT XML ELEMENT 

Name: subject 
Namespace: ABC: 

Purpose: Identifies the principal the assertion is about. 

5 

<! ELEMENT subject principal> 

DELEG XML ELEMENT 

Name: deleg 
Namespace: ABC: 

10 Purpose: deleg is placed inside of assertions to indicate if the subject has the right 

to delegate the assertion on to others. If a certificate does not contain a deleg element then 
the subject does not have delegation rights. 

<! ELEMENT deleg EMPTY> 

1 5 REVOKE XML ELEMENT 

Name: revoke 
Namespace: ABC: 

Purpose: revoke is placed inside of an assertion to indicate that it is a revocation. 



20 < ! ELEMENTE revoke EMPTY> 

Validating assertions 

For an assertion to be accepted by a resolver it must first be verified. Three types 

of verification are currently supported by ABC: (1) Validating the Issuer - Prove the 
certificate was issued by the listed issuer; (2) Validating the Date - Check that the certificate 
25 is within its valid date range; and (3) Validating the On-Line Tests - Successfully verify at 
least one of the on-line tests. 
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VALIDATING THE ISSUER 

Before a resolver accepts an assertion it MUST first determine if the listed issuer 
made the assertion. The simplest proof is for the assertion to be signed by the issuer. It is 
also possible that information outside of ABC, such as transport level security, may provide 
5 sufficient proof for the resolver to accept that an assertion was made by the listed issuer. 

VALIDATING THE DATE 

All assertions must have "not before 11 date/times. If the current date and time is 
less than the "not before" date/time then the assertion must be treated as false. This date is 
required because in order to resolve certain state conflicts which will be explained later. 
10 All assertions should have "not after" date/times. If the current date and time is 

greater than the "not after" date/time then the assertion must be treated as false. 

notbefore XML Element 

Name: notbefore 
Namespace: ABC: 

1 5 Purpose: Specifies that the assertion MUST NOT be honored at a date/time less 

than the one listed. All assertions MUST have a "not before" date. An assertion without a 
"not before" date MUST be treated as false. 



<! ELEMENT notbefore datetime> 
20 notafter XML Element 

Name: notafter 
Namespace: ABC: 

Purpose: Specifies that the assertion MUST NOT be honored at a date/time 
greater than the one listed. All assertions SHOULD have a "not after" date. 

25 

<! ELEMENT notafter datetime> 
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datetime XML Element 

Name: datetime 
Namespace: ABC: 
Purpose: Provides a date and time. 
5 Value: date-time. 



<! ELEMENT datetime #PCDATA> 

VALIDATING THE ON-LINE TESTS 
An on-line test is a test that requires that a communication occur with another 
10 system in order to determine the continuing validity of the assertion. An on-line test is the 
only way to determine if a principal's identity has been compromised or if an assertion has 
been revoked. 

On-line tests can occur either before the assertion is to be added to the resolver 
for the first time or before each and every time the resolver is required to refer to the 
15 assertion in order to determine the result of a security query. 

beforefirstuse XML Element 

Name: beforefirstuse 

Namespace: ABC: 

Purpose: Contains one or more 
20 tests at least one of which MUST be successfully executed before accepting the 

assertion into the resolver. An assertion with an empty beforefirstuse XML element MUST 
be failed. This rule is included so that if the FXPP ignore rules end up removing all the tests 
inside of the beforefirstuse XML element then the assertion will be failed. 



25 <! ELEMENT beforefirstuse ANY> 

everytime XML Element 

Name: everytime 
Namespace: ABC: 
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Purpose: Contains one or more tests at least one of which MUST be successfully 
executed before using an assertion that the resolver has previously accepted to satisfy a 
security query. An assertion with an empty everytime XML element MUST be failed. This 
rule is included so that if the FXPP ignore rules end up removing all the tests inside of the 
5 everytime XML element then the assertion will be failed. 



<! ELEMENT everytime ANY> 

Group Assertions 

GROUP ASSERTION 



10 Notation 

In order to create a group one uses the GROUP assertion which has the logical 
form GROUP(Issuer, Subject, Date, Revoke). 

The principal identifier of the group is listed in the subject. 

The issuer is the one who is asserting that the subject is a group. The issuer and 
1 5 subject may be the same. 

Delegation MUST NOT be used with the GROUP assertion. 

Revoke is used to specify that the subject is not a group. Generally a group 
revocation is used when it is time to remove a group from service. 

Resolution 

20 The GROUP assertion is much like the SELF assertion in that it types a principal. 

The GROUP assertion can then be used to confirm that other group assertions are really 
about groups. 

GROUP XML Element 

Name: GROUP 
25 Namespace: ABC: 
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Purpose: An assertion by the issuer that the subject identifies a new principal that 
represents a group. 

<! ELEMENT GROUP issuer subject notbefore notafter? 
5 bef oref irstuse? everytime? revoke?> 

MAKEMEMBER ASSERTION 

Notation 

The MAKEMEMBER assertion takes the form MAKEMEMBER(Issuer, 
Subject, Date, Delegate, Revoke, Group). In a MAKEMEMBER assertion the issuer asserts 
10 that the subject has the right to add members to the listed group. By issuing a 

MAKEMEMBER assertion the issuer also makes an implicit GROUP assertion that the 
listed group is in fact a group. 

Resolution 

After the resolver has validated a MAKEMEMBER(Issuerl, Subjectl, Datel, 
15 Delegate 1, Revoke 1, Group 1) assertion two assertions should be entered into the assertion 
database. The first is the MAKEMEMBER assertion. The second is a GROUP assertion of 
the form GROUP(Issuerl, Groupl, Datel). Note that regardless if MAKEMEMBER is a 
revocation or not the implied GROUP assertion will always be a non-revocation assertion. 

Whenever a non-revocation GROUPMEMBER assertion is made it is necessary 
20 that a valid MAKEMEMBER assertion be available which provides proper authority for the 
issuer of the GROUPMEMBER assertion to make that assertion. 

makemember XML Element 

Name: makemember 
Namespace: ABC: 

25 Purpose: The issuer asserts that the subject has the right to add members to the 

listed group. 
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< ! ELEMENT makemember issuer subject (deleg I revoke)? 
notbefore notafter? bef oref irstuse? everytime? groupname> 

group XML Element 

Name: groupname 
Namespace: ABC: 

Purpose: Identifies the group an assertion is referring to. 



<! ELEMENT groupname principal> 

REMOVEMEMBER ASSERTION 

10 Notation 

The REMOVEMEMBER assertion takes the form REMOVEMEMBER(Issuer, 
Subject, Date, Delegate, Revoke, Group). In a REMOVEMEMBER assertion the issuer 
asserts that the subject has the right to remove members from the listed group. By issuing a 
REMOVEMEMBER assertion the issuer also makes an implicit GROUP assertion that the 
1 5 listed group is in fact a group. 

Resolution 

After the resolver has validated a REMO VEMEMBER(Issuerl , Subjectl, Date!, 
Delegated Revokel, Groupl) assertion two assertions should be entered into the assertion 
database. The first is the REMOVEMEMBER assertion. The second is a GROUP assertion 
20 of the form GROUP(Issuerl, Groupl, Datel). Note that regardless if REMOVEMEMBER 
is a revocation or not the implied GROUP assertion will always be a non-revocation 
assertion. 

Whenever a revocation GROUPMEMBER assertion is made it is necessary that a 
valid REMOVEMEMBER assertion be available which provides proper authority for the 
25 issuer of the GROUPMEMBER assertion to make that assertion. 

removemember XML element 

Name: removemember 
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Namespace: ABC: 

Purpose: The issuer asserts that the subject has the right to remove members from 
the listed group. 



< ! ELEMENT removemember issuer subject (deleg | revoke)? 
notbefore notafter? bef oref irstuse? everytime? groupname> 

GROUPMEMBER ASSERTION 



Notation 

The GROUPMEMBER assertion is used to specify that a principal is a member 
10 of a particular group. Its logical form is GROUPMEMBER(Issuer, Subject, Date, Delegate, 
Revoke, Group). 

In a GROUPMEMBER assertion the issuer is stating that the subject is a member 
of the listed group. 

If the assertion includes delegation authority then the subject is authorized to add 
1 5 other people to the group. In other words, delegation authority creates an implicit 
MAKEMEMBER assertion. 

If the assertion includes a revoke then the assertion states that the subject is not a 

member of the listed group. 
Resolution 

20 A GROUPMEMBER assertion is actually a combination of MAKEMEMBER 

and GROUPMEMBER. That is, for a GROUPMEMBER assertion to succeed the Issuer has 
to have the right to add members to the group. 

In the case of a revoke GROUPMEMBER assertion the assertion decomposes 
into a the GROUPMEMBER assertion and the REMOVEMEMBER assertion. 

25 groupmember XML Element 

Name: groupmember 
Namespace: ABC: 
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Purpose: Identifies that the list of members for this group is incomplete. 



<! ELEMENT GROUP issuer subject notbefore notafter? 
beforef irstuse? everytime? (delegate | revoke)? groupname> 



K-OF-N THRESHOLD PRINCIPAL 



kofh XML Element 

Name: kofh 
Namespace: ABC: 

10 Purpose: To declare that the group is a K-of-N threshold. Kval MUST be less 

than or equal to the number of principal elements. If Kval is greater than the number of 
principal elements then the certificate MUST be treated as invalid. 



<! ELEMENT kofn kval> 

15 kval XML Element 

Name: kval 

Namespace: ABC: 

Purpose: An integer indicating how many of the listed principals must agree for 
an assertion to hold. 
20 Value: Number 

Number = Integer | (Int-No-Zero Integer*) 

Int-No-Zero = "1" | "2" | "3" | "4" | "5" | "6" | "T | "8" | "9" 

Integer = "0" | Int-No-Zero 



25 <! ELEMENT #PCDATA> 

Self Assertion 

When a resolver is first started it must be bootstrapped, told who it is. The self 
assertion can be used to this end, to tell a resolver who it is. A resolver may have multiple 
identities. Note that there is no requirement that resolvers be bootstrapped using a self 
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assertion. A resolver can certainly generate its own identity and use appropriate mechanisms 
to inform others of that identity. 

NOTATION 

The notation used by ABC to represent the self assertion is SELF(Issuer, Subject, 
5 Date/Time, Delegate, Revoke). 

The subject is the principal identifier for the resolver. 

In cases where the device is starting with absolutely no initial state the Issuer 
may be the same as the Subject. In other cases an authorized principal may be the issuer. 

The date/time stamp indicates when the self assertion goes into effect. 
10 Delegate authority is handled normally and controls if the resolver is allowed to 

assign the identity to others. 

A revoke self assertion is read as meaning that the resolver MUST NOT take on 
the listed identity. As usual with revocations, in the case of a conflict between an assertion 
and revocation the one with the later date/time wins. 

15 RESOLUTION 

The self assertion is used for substitutions. It lets the resolver know that any 
issuers or subjects who are the same as the subject of a self assertion identify the system the 
resolver is responsible for. 

SELF XML ELEMENT 

20 Name: self 

Namespace: ABC: 

Purpose: Asserts that the subject identifies the system the resolver is responsible 

for. 

25 < ! ELEMENT self issuer subject (deleg | revoke)? notbefore 

notafter? bef oref irstuse? everytime?> 
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ALL Assertion 
NOTATION 

The notation used by ABC to represent the ALL assertion is ALL(Issuer, 
Subject, Date/Time, Delegate, Revoke). 
5 In the ALL assertion the issuer asserts that the subject has all the rights of the 

issuer. 

RESOLUTION 

The ALL assertion is a principal substitution trust transfer assertion. 

ALL XML ELEMENT 

10 Name: all 

Namespace: ABC: 

Purpose: Indicates that subject has all the rights of the issuer. 



< ! ELEMENT all issuer subject (deleg | revoke)? notbefore 
15 notafter? bef oref irstuse? everytime?> 

signedassert XML Element 

Name: signedassert 

Namespace: ABC: 

Purpose: It is included with an assertion that has been signed by the issuer. The 
20 element is needed in order to establish a semantic relationship between the signature and 
what is being signed. 



<! ELEMENT signedassert EMPTY> 

FXPP and ABC 

25 Talk about the subtleties of the ignore rule. 
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ABC Compliance 

CSPKI compliant systems MUST support the Flexible XML Processing Profile 
[FXPP] and MUST understand all XML elements defined in this specification. 

hash XML Element 

5 Name: hash 

Namespace: ABC: 

Purpose: A hash contains an element that specifies the actual hash and potentially 
a list of URIs indicating where the object being hashed can be found. 



10 < ! ELEMENT hash href*> 

Signature XML Element 

Name: signature 
Namespace: ABC: 

Purpose: The signature XML element is used to specify that the contents are a 
15 signature. The mechanism for expressing the signature is algorithm specific and is not 
specified here. ABC only specifies what is being signed, in this case, the value XML 
element. 



<! ELEMENT signature value> 

20 VALUE XML ELEMENT 

Name: value 
Namespace: ABC: 

Purpose: The value XML element includes what is being signed. Because the 
signature information itself is content it must be signed. Thus identification information such 
25 as the principal who is doing the signing. 

The optional principal element is used to indicate who is doing the signing. The 
element is optional because some signature formats may already contain principal 
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identification information. A href XML element may also be included in order to indicate 
where the material being signed. 

<! ELEMENT value principal? href* signedassert ?> 

5 keytransfer XML Element 

Name: keytransfer 
Namespace: ABC: 

Purpose: To transfer a session key that has been encrypted with a principal's 
public key. The principal XML element identifies the principal whose public key was used 
10 to encrypt the session key. A second algorithm specific element carries the encrypted 

session key. If the content being encrypted is not known from context then one or more href 
elements may be included to indicate what has been encrypted. 

<! ELEMENT keytransfer principal href*> 

15 Example 1 - CD and Speakers 

INTRODUCTION 

A CD player and speakers have both been connected to a broadcast type network 
such as wireless or power line network. Anyone who is within the broadcast area has the 
ability to communicate with both the CD and Speakers. That means that anyone, anywhere 
20 can use the CD or Speakers. 

To protect against unauthorized access both devices will only accept commands 
over the broadcast medium if they have been signed and/or encrypted by a trusted principal. 

The process of establishing trust is referred to as "branding." Both devices would 
be enhanced with a non-broadcast networking type like USB or a limited broadcast 
25 networking type like infrared. The devices will accept unsigned/unencrypted commands 
through the limited networking connection. This will let the device be branded in a more 
secure manner. 
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One can imagine, for example, a hand held device such as a WinCE machine 
which uses an infrared transmitter or a USB connection to attach to the CD and Speakers. 
There are two types of basic branding. 

In the example below the branding device uses the limited networking interface 
5 to provide a principal identifier containing both a public and a private key. This will be the 
keys that the CD uses to identify itself. The branding device will then transmit a certificate 
that says that the CD player trusts the branding device. This certificate is used to initialize 
the device's resolver, it also provides the CD with the branding device's public key for use in 
checking certs provided by other devices who claim to be authorized by the branding device. 
10 Finally, the branding device will send the CD a signed certificate that asserts that the CD is a 
member of a group that is trusted by the branding device. The CD will now be willing to 
communicate with anyone else who can prove they are also a member of the group. 

PROVIDING THE CD WITH ITS PUBLIC/PRIVATE KEY PAIR 

This is the principal generated by the branding device for the CD. The principal 
15 identifier does not need to be included in a certificate because the CD implicitly trusts any 
communication of its "trust" line. 



<x: principal xmlns :x="ABC: "> 
<publickey> 
20 <x: pubrsapkcsl> 

<x: rsae>1234</x: rsae> 
<x: rsan>1234</x: rsan> 
</x : pubrsapkcsl> 
</x:publickey> 
25 <x: privatekey> 

<x : privatersapkcsl> 

<x: rsae>1234</x: rsae> 
<x: rsan>1234</x: rsan> 
<x: rsad>1234</x : rsad> 
30 <x: rsap>12 34</x: rsap> 

<x: rsaq>1234</x: rsaq> 
<x: rsaa>1234</x: rsaa> 
<x: rsab>1234</x:rsab> 
<x: rsac>1234</x: rsac> 
35 </x : privatersapkcsl> 

</x : private key> 
</x:principal> 
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PROVIDING THE CD WITH A CERTIFICATE THAT MAKES IT TRUST THE 

BRANDING DEVICE. 

This is the certificate that states that the CD trusts the branding device. It is given 
to the CD by the branding device. This certificate will be included by the CD in its 
5 certification reduction database. Again, the CD trusts this certificate because it was 
transmitted over the trusted line. 



<x:cert xmlns : x="ABC: "> 

10 <issuer><principal><publickeyxkeyhash><hash> 
<md5>Hash of CD Player's Pub Key</md5> 
</hash></keyhash></publickey></principal></issuer> 

<sub j ectXprincipalXpublickeyXx : pubrsapkcsl> 
15 <x: rsae>2345</x: rsae> 

<x: rsan>234 5</x: rsan> 
</x:pubrsapkcslX/publickeyX/principalX/subject> 

<tag> 

20 <allpermissions/> 
</tag> 

</x: cert> 



25 PROVIDING THE CD WITH A SIGNED CERTIFICATE WHICH PROVES THE 

CD IS A MEMBER OF A GROUP 

This next certificate, issued by the branding device, asserts that the CD is a 
member of the named group. This certificate is signed because the CD will need to present it 
to other devices in order to prove that it is authorized to speak with them. 

30 

<x: signature xmlns : x="ABC: "> 
<hash> 

<md5>Hash of the certificate inside the value 
35 element</md5> 
</hash> 

<principalXpublickeyXkeyhashXhash> 

<md5>Hash of Branding Device's Pub Key</md5> 
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</hash></keyhashX/publickey></principal> 

<sigrsapkcslmd5>This is a digital 
signature</sigrsapkcslmd5> 

5 

<value> 
<cert> 

<issuer><principal><publickey><keyhashxhash> 
10 <md5>Hash of Branding Device's Pub Key</md5> 

</hashX/keyhashX/publickeyX/principalX/issuer> 

<subjectxprincipaixpublickeyxkeyhashxhash> 
15 <md5>Hash of CD Player's Pub Key</md5> 

</hashX/keyhashX/publickeyX/principalX/subject> 
<tag> 

20 

<groupmemXprincipal><publickeyXkeyhashXhash> 

<md5>Hash of Group's Public Key</md5> 

</hashx/keyhash></publickeyX/principalx/groupmem> 
25 </tag> 

</cert> 
</value> 

30 </x: signature> 

Note that the CD doesn't actually know the real public key of the group it is a 
member of. This group probably doesn't even have a private key associated with it. More 
likely than not the branding device generated a public/private key pair, threw away the 
35 private key and used the public key as the group name. 

WRAP-UP 

The same process as specified previously is then repeated with the speakers. 
When the time comes for the CD to talk directly to the speaker a key exchange 
happens. The CD sends over its public key and the group membership certificate. The 
40 speaker does the same. Both devices are thus able to see that they are members of the same 
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group as certified by the branding device that they have both been instructed to trust. As 
such the two devices will be willing to communicate with each other. 

Example 2 - Certificate Revocation 

In the section "Providing the CD with a signed certificate which proves the CD is 
5 a member of a group" above, a signed certificate was presented where the branding device 
certified that the CD was a member of the local group. However the owner of the CD player 
is letting his friend borrow the CD player and so no longer wishes the CD player to have 
access to his private network. So the branding device issues a revocation. A revocation is 
identical to a certificate, except it says that something is not true rather than something is 
10 true. 

<x: signature xmlns :x="ABC: "> 
<hash> 

15 <md5>Hash of the certificate inside the value 

element </md5> 
</hash> 

<principal><publickey><keyhashxhash> 
20 <md5>Hash of Branding Device's Pub Key</md5> 

</hashx/keyhashx/publickey></principal> 



25 



<sigrsapkcslmd5>This is a digital 
signature</sigrsapkcslmd5> 



<value> 
<cert> 



<issuerXprincipalXpublickeyXkeyhashxhash> 
30 <md5>Hash of Branding Device's Pub Key</md5> 

</hashx/keyhashX/publickeyX/principalx/issuer> 

<subject><principalXpublickey><keyhashxhash> 
35 <md5>Hash of CD Player's Pub Key</md5> 

</hashX/keyhashx/publickey></principal></ subj ect> 
<negtag> 

40 

<groupmem><principalXpublickeyXkeyhashXhash> 
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<md5>Hash of Group T s Public Key</md5> 

</hash></keyhash></publickey></principalx/groupmem> 
</negtag> 

</ cert> 
</value> 

</x: signature> 

The only thing different about this certificate from the original is that this 
certificate uses the negtag XML element instead of the tag XML element. 



Having described and illustrated the principles of our invention with reference to an 

1 5 illustrated embodiment, it will be recognized that the illustrated embodiment can be 

modified in arrangement and detail without departing from such principles. It should be 
understood that the programs, processes, or methods described herein are not related or 
limited to any particular type of computer apparatus, unless indicated otherwise. Various 
types of general purpose or specialized computer apparatus may be used with or perform 

20 operations in accordance with the teachings described herein. Elements of the illustrated 
embodiment shown in software may be implemented in hardware and vice versa. 

As previously, it will also be recognized that the branding process of the invention 
can be implemented using other digital certificate techniques than the Assertion-Based 
Certificates, such as using X.509 digital certificates and other digital certificate standards or 

25 systems. Also, the branding process can use cryptographic techniques other than digital 
certificates to securely imprint the networked computing device with its trust group setup 
and provide secure interaction among trust group members. 

In view of the many possible embodiments to which the principles of our invention 
may be applied, it should be recognized that the detailed embodiments are illustrative only 

30 and should not be taken as limiting the scope of our invention. Rather, we claim as our 
invention all such embodiments as may come within the scope and spirit of the following 
claims and equivalents thereto. 
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